Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/iPBzS_uwUzrjrIw4HXWeXeuGKQk.roa
File: iPBzS_uwUzrjrIw4HXWeXeuGKQk.roa (raw, json)
Hash identifier: YuRhgQ6UmgVdtdBtX9QYtthLyJmtsPqkTXpg5SmzCCs=
Subject key identifier: 88:F0:73:4B:FB:B0:53:3A:E3:AC:8C:38:1D:75:9E:5D:EB:86:29:09
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01945FB54FDD898C5DCCA15A3DC79912CD06
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/iPBzS_uwUzrjrIw4HXWeXeuGKQk.roa
Signing time: Mon 13 Jan 2025 12:48:25 +0000
ROA not before: Mon 13 Jan 2025 12:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42962
IP address blocks: 194.163.80.0/22 maxlen: 24
195.180.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:b5:4f:dd:89:8c:5d:cc:a1:5a:3d:c7:99:12:cd:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 13 12:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88f0734bfbb0533ae3ac8c381d759e5deb862909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:56:fd:8a:80:1f:10:c9:ae:ad:fc:77:d2:d6:
f8:46:41:a9:c4:33:29:35:9b:57:7d:ba:dd:90:85:
39:e6:9d:84:aa:47:71:32:06:7b:35:02:c5:27:74:
31:78:63:1e:e3:2f:27:ea:52:fe:9c:ef:b2:06:78:
d9:5c:6c:dc:ef:4c:56:b7:cf:5c:56:17:cf:39:14:
0d:5c:c0:01:89:b1:d4:09:f6:93:28:23:5a:f2:40:
c8:c5:83:3d:5f:88:04:0d:3a:45:e7:c1:b2:99:8c:
20:8a:ce:3e:cf:64:9a:5a:7b:c1:08:d3:36:5b:49:
88:59:71:e1:78:dc:5e:78:84:a7:db:24:b5:9d:04:
af:97:42:5b:ac:24:bc:14:6b:67:d8:68:8f:d9:98:
a4:27:34:24:17:38:be:45:b0:d7:08:56:c3:9a:12:
46:be:f0:95:04:2e:8c:30:aa:21:ce:ba:77:7d:b4:
09:45:f1:53:77:23:d3:ca:8b:fe:df:87:f5:48:d1:
84:36:c3:bb:39:ea:df:53:84:c7:0d:ca:03:3a:b7:
73:d1:ec:ad:f8:c4:0b:5c:20:07:b4:a4:96:1d:2f:
44:bf:5c:0c:88:47:b7:89:96:ca:b6:d0:fd:58:80:
7c:e5:4e:f3:a3:3e:a0:0f:ed:57:9e:60:d6:2d:c7:
0a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F0:73:4B:FB:B0:53:3A:E3:AC:8C:38:1D:75:9E:5D:EB:86:29:09
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/iPBzS_uwUzrjrIw4HXWeXeuGKQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.80.0/22
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
45:9b:e4:05:71:e1:89:f1:f5:5c:13:1e:e9:3e:14:5e:06:74:
65:80:08:fc:6c:ed:52:dc:b7:98:1a:d7:0c:3d:07:de:46:40:
ef:d0:cf:41:54:77:7b:4c:a1:a5:cd:03:23:e1:79:a5:e7:91:
88:6d:55:aa:8b:ee:9c:4e:5a:e8:b2:47:ea:d6:f0:6a:42:44:
40:92:21:12:65:e9:26:e1:c7:61:5b:c8:f8:79:42:ec:ba:07:
2c:5a:1a:3f:c7:97:95:55:8c:33:fd:ba:83:d9:cd:25:a0:08:
28:8b:6f:7b:06:60:e4:49:71:e6:46:9f:0e:37:91:74:fc:3c:
72:65:85:d4:23:45:48:92:be:44:a4:81:81:f9:5a:b7:a1:fe:
48:b0:cd:be:09:5e:cd:9b:18:cc:24:9e:23:92:87:4a:59:60:
01:1b:1a:21:24:3b:9d:31:08:0f:51:fd:cf:4e:d7:c4:3a:fc:
10:8f:bf:1b:4b:3b:98:6a:14:97:ad:7d:01:02:5a:2f:73:ca:
76:12:b6:1b:b1:19:95:09:6e:68:7e:e0:59:e0:f4:a4:02:11:
bb:34:86:23:bd:55:92:78:5a:3e:d8:b4:07:02:62:e0:83:2c:
36:6c:60:57:5a:5a:58:96:cf:8e:56:8f:1d:a9:94:4d:68:55:
b8:36:b1:72
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZRftU/diYxdzKFaPceZEs0GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NDcwMTc1NjRjNzExYmNiZDU3NjgwYTBkZmQwMGYyYTVk
MDk5ZGIwHhcNMjUwMTEzMTI0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OGYwNzM0YmZiYjA1MzNhZTNhYzhjMzgxZDc1OWU1ZGViODYyOTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlb9ioAfEMmurfx30tb4RkGpxDMp
NZtXfbrdkIU55p2EqkdxMgZ7NQLFJ3QxeGMe4y8n6lL+nO+yBnjZXGzc70xWt89c
VhfPORQNXMABibHUCfaTKCNa8kDIxYM9X4gEDTpF58GymYwgis4+z2SaWnvBCNM2
W0mIWXHheNxeeISn2yS1nQSvl0JbrCS8FGtn2GiP2ZikJzQkFzi+RbDXCFbDmhJG
vvCVBC6MMKohzrp3fbQJRfFTdyPTyov+34f1SNGENsO7OerfU4THDcoDOrdz0eyt
+MQLXCAHtKSWHS9Ev1wMiEe3iZbKttD9WIB85U7zoz6gD+1XnmDWLccKNwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIjwc0v7sFM646yMOB11nl3rhikJMB8GA1UdIwQY
MBaAFNdHAXVkxxG8vVdoCg39APKl0JnbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjIt
NGYwZThjZTExYTdkLzEvaVBCelNfdXdVenJqckl3NEhYV2VYZXVHS1FrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9iYTIzNjItMGNjNS00OWJkLWE1MjItNGYwZThjZTExYTdk
LzEvMTBjQmRXVEhFYnk5VjJnS0RmMEE4cVhRbWRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwqNQAwQB
w7SWMA0GCSqGSIb3DQEBCwUAA4IBAQBFm+QFceGJ8fVcEx7pPhReBnRlgAj8bO1S
3LeYGtcMPQfeRkDv0M9BVHd7TKGlzQMj4Xml55GIbVWqi+6cTlroskfq1vBqQkRA
kiESZekm4cdhW8j4eULsugcsWho/x5eVVYwz/bqD2c0loAgoi297BmDkSXHmRp8O
N5F0/DxyZYXUI0VIkr5EpIGB+Vq3of5IsM2+CV7NmxjMJJ4jkodKWWABGxohJDud
MQgPUf3PTtfEOvwQj78bSzuYahSXrX0BAlovc8p2ErYbsRmVCW5ofuBZ4PSkAhG7
NIYjvVWSeFo+2LQHAmLggyw2bGBXWlpYls+OVo8dqZRNaFW4NrFy
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:09 2025 by rpki-client